èŠ‚ç‚¹æ–‡çŒ®

åŸºäºŽèƒ½åŠ›çš„è½»é‡çº§SIPå®‰å…¨æœºåˆ¶ç ”ç©¶

Study on Lightweight Security Mechanism for SIP Based on Capabilities

åˆ†é¡µä¸‹è½½
åˆ†ç« ä¸‹è½½
æ•´æœ¬ä¸‹è½½
åœ¨çº¿é˜…è¯»
ä¸æ”¯æŒè¿…é›·ç‰ä¸‹è½½å·¥å…·ï¼Œè¯·å–æ¶ˆåŠ é€Ÿå·¥å…·åŽä¸‹è½½ã€‚

ã€ä½œè€…ã€‘ é™†ä¸‡é¡ºï¼›

ã€ä½œè€…åŸºæœ¬ä¿¡æ¯ã€‘ é‡åº†å¤§å¦ ï¼Œ è®¡ç®—æœºç³»ç»Ÿç»“æž„ï¼Œ 2011ï¼Œ ç¡•å£«

ã€æ‘˜è¦ã€‘ SIP(Session Initial Protocol)æ˜¯ä¼´éšç€äº’è”ç½‘çš„å‘å±•è€Œè¯žç”Ÿå’Œå‘å±•çš„,å¹¶ä»¥å…¶ç®€å•æ˜“ç”¨ä»¥åŠè‰¯å¥½çš„æ‰©å±•æ€§å’Œå¼€æ”¾æ€§ç‰ä¼˜åŠ¿,å·²å‘å±•æˆä¸ºä¸‹ä¸€äº’è”ç½‘è‡³å…³é‡è¦çš„åº”ç”¨åè®®ã€‚SIPæœ¬èº«ç¼ºä¹ç›¸åº”æœ‰æ•ˆçš„å®‰å…¨æœºåˆ¶ã€‚çŽ°æœ‰SIPå®‰å…¨æœºåˆ¶æ™®éå˜åœ¨ä¸€å®šçš„ä½¿ç”¨å±€é™æ€§å’Œå®‰å…¨æ¼æ´ž,å¹¶ä¸”ä¼šå¸¦æ¥å¦‚æœåŠ¡å™¨è´Ÿæ‹…è¿‡é‡ä¹‹ç±»çš„è´Ÿé¢å½±å“,ä»Žè€Œé™ä½ŽSIPçš„æœåŠ¡æ•ˆçŽ‡å’Œè´¨é‡,ä¼šå½±å“SIPä¼šè¯ç½‘ç»œçš„å®‰å…¨æ€§å’Œç¨³å®šæ€§ã€‚åŒæ—¶,SIPçš„æ‰¿è½½è¿è¡ŒçŽ¯å¢ƒå°†æ˜¯é«˜åº¦å¼€æ”¾å¹¶ä¸”åˆ†å¸ƒå¼å¼‚æž„çš„ä¸‹ä¸€ä»£äº’è”ç½‘,å…·æœ‰å¾ˆå¤§ä¸ç¡®å®šæ€§å’Œä¸å¯é æ€§,è¿™å°†ç»™SIPç›¸åº”åŠŸèƒ½å®‰å…¨ã€å¯é å®žçŽ°å¸¦æ¥æžå¤§çš„éšæ‚£ã€‚é«˜æ•ˆã€ä¾¿æ·çš„SIPå®‰å…¨æœºåˆ¶å¯¹äºŽSIPè¿›ä¸€æ¥çš„å‘å±•å’ŒæŽ¨å¹¿åº”ç”¨å…·æœ‰ååˆ†é‡è¦çš„æ„ä¹‰ã€‚SIPå®‰å…¨æœºåˆ¶å¿…é¡»ä»Žåè®®æœ¬èº«å…¥æ‰‹,å¹¶ç»“åˆä¸‹ä¸€ä»£äº’è”ç½‘çš„ç‰¹æ®Šæ€§å…¨æ–¹ä½åœ°è¿›è¡Œè€ƒè™‘,åŒæ—¶è¦ä¿æŒä¸‹ä¸€ä»£äº’è”ç½‘çš„æ•´ä½“æ€§å’Œä¸€è‡´æ€§ç‰ç‰¹æ€§ã€‚æœ¬æ–‡é¦–å…ˆè¯¦ç»†ç ”ç©¶äº†SIPç›¸å…³é‡è¦æ¦‚å¿µå’Œå±žæ€§,é‡ç‚¹åˆ†æžäº†SIPæ¶ˆæ¯è§„èŒƒ,åŒ…æ‹¬SIPè¯·æ±‚æ¶ˆæ¯å’Œå“åº”æ¶ˆæ¯;éšåŽå¯¹SIPå®‰å…¨å¨èƒä»¥åŠçŽ°æœ‰IPå®‰å…¨æœºåˆ¶è¿›è¡Œäº†è¯¦ç»†åˆ†æž,ä¸»è¦åˆ†æžäº†æ³¨å†ŒåŠ«æŒã€æœåŠ¡å™¨ä¼ªè£…ã€æ¶ˆæ¯ç¯¡æ”¹å’Œæ‹’ç»æœåŠ¡ç‰å®‰å…¨é—®é¢˜,å¹¶å¯¹çŽ°æœ‰çš„SIPå®‰å…¨è®¤è¯å’ŒåŠ å¯†æ–¹å¼è¿›è¡Œäº†ç»¼è¿°,åŒ…æ‹¬HTTPæ‘˜è¦è®¤è¯ã€åŸºäºŽèº«ä»½çš„å®‰å…¨è®¤è¯ã€S/MIMEåŠ å¯†ã€TLSåŠ å¯†ã€IPSecåŠ å¯†ã€‚åœ¨æ¤åŸºç¡€ä¸Š,ç ”ç©¶äº†åŸºäºŽECDHç®—æ³•çš„è½»é‡çº§SIPå®‰å…¨è®¤è¯ä»¥åŠå¯†é’¥åå•†æœºåˆ¶,å¹¶å¼•å…¥ä¸€æ¬¡å£ä»¤æœºåˆ¶,æå‡ºäº†åŸºäºŽECODHçš„å®‰å…¨éªŒè¯å’Œå¯†é’¥åå•†æœºåˆ¶,å¯¹å…¶è¿›è¡Œäº†å®‰å…¨æ€§è®ºè¯,å¹¶ä¸ŽçŽ°æœ‰çš„RSAåŠ å¯†ã€DHå¯†é’¥åå•†åˆ†æžå¯¹æ¯”è¯æ˜Žäº†å…¶é«˜æ•ˆçš„è½»é‡ç‰¹æ€§;åŒæ—¶æœ¬æ–‡è¿˜å€Ÿé‰´äº†IPè·¯ç”±å™¨åˆ©ç”¨èƒ½åŠ›æ ‡è®°é€‰æ‹©æ•°æ®æ¥é˜²å¾¡DoS/DDoSçš„æ€æƒ³,åœ¨æ¯ä¸ªSIPç½‘ç»œåŸŸè®¾ç½®è¾¹ç•Œä»£ç†æœåŠ¡å™¨å¯¹SIPæ¶ˆæ¯æ‰§è¡Œâ€œèƒ½åŠ›â€åˆ†æžå¤„ç†,å¯¹æ‰€æœ‰è¿‡å¾€çš„SIPæ¶ˆæ¯å…¨ç¨‹ç›‘æŽ§å’Œé¢„è¦,ä»¥æ›´å¥½åœ°é˜²å¾¡DoS/DDoSå®‰å…¨å¨èƒã€‚è¿™é‡Œçš„â€œèƒ½åŠ›â€æ˜¯æŒ‡è¾¹ç•Œä»£ç†æœåŠ¡å™¨é€‰æ‹©å¤„ç†SIPæ¶ˆæ¯è¡Œä¸ºçš„å‚ç…§ä¾æ®,åŒ…æ‹¬äº†ç¬¦åˆSIPæ¶ˆæ¯è¡Œä¸ºç‰¹å¾çš„ç›¸å…³å®‰å…¨å±žæ€§ä¸Žé‰´åˆ«å‡†åˆ™ã€‚æœ¬æ–‡æå‡ºçš„SIPå®‰å…¨æœºåˆ¶æ›´å®‰å…¨ã€é«˜æ•ˆå’Œè½»ä¾¿,å®ƒè§£å†³äº†ECDHéªŒè¯å’Œå¯†é’¥åå•†ç”¨æˆ·å¯†ç å®¹æ˜“è¢«çªƒå–çš„é£Žé™©,åå•†å¯†é’¥è¾ƒä¸ºç®€æ´,å®žçŽ°è¿‡ç¨‹ä¾¿æ·,å¹¶ä¸”æ›´ä¸ºå®Œå¤‡åœ°ç¬¦åˆæ ‡å‡†å®‰å…¨æ€§è¯„ä¼°è§„èŒƒã€‚åŒæ—¶,æœ¬æ–‡å¼•å…¥â€œèƒ½åŠ›â€æ ‡ç¾,å¯¹è¿‡å¾€SIPæ¶ˆæ¯è¿›è¡Œå…¨ç¨‹ç›‘æŽ§å’Œé¢„è¦,å˜è¢«åŠ¨é˜²å¾¡ä¸ºä¸»åŠ¨é˜²å¾¡,èƒ½æ›´ä¸ºæ™ºèƒ½åŒ–åœ°å¯¹ä¸åˆæ³•çš„SIPæ¶ˆæ¯è¿›è¡Œè¿‡æ»¤,æœ‰æ•ˆæŠµåˆ¶DoS/DDoSã€‚å¦å¤–,å¯¹SIPç½‘ç»œæ‹“æ‰‘è½»é‡åŒ–åœ°ä¼˜åŒ–,ä¾¿äºŽSIPåŠŸèƒ½æ›´ä¸ºå¿«æ·åœ°å®žçŽ°ã€‚æ›´å¤š è¿˜åŽŸ

ã€Abstractã€‘ SIP was brought up and develops along with the Internet development, it has become a critical application protocol for the NGN(Next Generation Network)due to its advantage of simple structure with better extensibility and openness, and its convenience to be carried out. However, SIP has no corresponding effective security mechanism on its own. The existing security mechanisms for SIP have some certain limitations and security vulnerabilities universally. Moreover, these security measures will also bring some negative impacts, such as much heavier burdens for SIP servers during the connections and business process, reducing the efficiency and quality of services through SIP, affecting the security and stability of the SIP Session Network. Meanwhile, the loadbearing circumstance for SIP to run is a highly open and distributed application environment with great uncertainty and unreliability, resulting in serious latent security risks for the corresponding function safely and reliably achieving of SIP. So, an efficient and convenient security mechanism is very important for the further development and application for SIP.The security mechanism for SIP should be comprehensively considered combining the intrinsic characteristics of protocol itself and the particularity of NGN, maintaining its consistency, integrity and other special features. In this paper, we firstly discuss the important concepts and attributes of SIP, focusing on the specification of SIP message, including the request message and response message of SIP. Secondly,we make classified research about the existing security threats and mechanisms of SIP in detail, such as registration hijacks, server disguising, message tampering, DoS(Denial of Service) and so on, and give detailed study and analysis on existing SIP security authentication and encryption, including HTTP digest authentication, identity-based security authentication, S/MIME encryption, TLS encryption, IPSec encryption. Thirdly, we study an advanced lightweight security authentication and key negotiation mechanism based on ECDH algorithm, in which one-time password authentication, and a new authentication and key negotiation method based on ECODH are introduced. Subsequently , we demonstrate its properties of security according to the Key Negotiation Security Properties Standard. It shows the highly lightweight characteristics of the new protocol by comparison the amount of its calculation with existing RSA encryption, DH key agreement. As we know, the DoS/DDoS defense for IP networks benefits from the capabilities signing during the data selection in routers. In this paper, we combine the instinct characteristics of SIP and the achievement of credibility research for NGN, configuring boundary proxy servers in every SIP network domain to perform capabilities analysis and process to SIP messages, monitoring and prewarning them simultaneously during the whole procedure to well defending DoS/DDoS. Besides, we also improve the topology of SIP network to improve the overall implementation in a lightweight pattern. The capabilities are used for boundary proxy servers to choose the coming SIP messages as the standard reference, including security attributes and identification strategies associated with the SIP message behavioral characteristics.Based on the above research work, we proposed a more appropriate capabilities-based and lightweight security scheme for SIP, which is more suitable for its further applications in NGN. Comparing to the existing SIP security mechanisms, it is more secure, efficient and portable. The proposed solution is able to avoid the risks of user password being easily stolen for the authentication and key agreement process based on ECDH, and it is characterized of more concise consultation key, easy-to-realization, and conforming to the security assessment specifications perfectly. Also, for our solution monitoring and prewarning SIP messages through capabilities analysis procedure during the whole process, it transforms passive defense into active defense, filtering illegitimate SIP messages more intelligently, and thus defensing DoS/DDoS effectively. Additionally, the lightweight optimization for SIP network topology will make implementation of SIP functions easier and more efficient.æ›´å¤š è¿˜åŽŸ

ã€å…³é”®è¯ã€‘ å®‰å…¨è®¤è¯ï¼› å¯†é’¥åå•†ï¼› ä¸€æ¬¡å£ä»¤ï¼› èƒ½åŠ›ï¼› è½»é‡ï¼›
ã€Key wordsã€‘ Security Authenticationï¼› Key Negotiationï¼› One-time Passwordï¼› Capabilitiesï¼› Lightweightï¼›

ã€ç½‘ç»œå‡ºç‰ˆæŠ•ç¨¿äººã€‘ é‡åº†å¤§å¦

ã€åˆ†ç±»å·ã€‘TP393.08
ã€ä¸‹è½½é¢‘æ¬¡ã€‘58
æ”»è¯»æœŸæˆæžœ

çŸ¥ç½‘èŠ‚ä¸‹è½½

èŠ‚ç‚¹æ–‡çŒ®ä¸ï¼š

æœ¬æ–‡é“¾æŽ¥çš„æ–‡çŒ®ç½‘ç»œå›¾ç¤º:

æœ¬æ–‡çš„å¼•æ–‡ç½‘ç»œ

èŠ‚ç‚¹æ–‡çŒ®

èŠ‚ç‚¹æ–‡çŒ®

åŸºäºŽèƒ½åŠ›çš„è½»é‡çº§SIPå®‰å…¨æœºåˆ¶ç ”ç©¶

Study on Lightweight Security Mechanism for SIP Based on Capabilities

æœ¬æ–‡é“¾æŽ¥çš„æ–‡çŒ®ç½‘ç»œå›¾ç¤º:

åŸºäºŽèƒ½åŠ›çš„è½»é‡çº§SIPå®‰å…¨æœºåˆ¶ç ”ç©¶